X
Tech
Home Tech Security

Microsoft WINS vulnerability under attack

Just one week after Microsoft issued a fix for a worm hole in the Windows Internet Name Service (WINS), malicious hackers have started launching attacks against unpatched systems.The attacks, first spotted by the SANS Internet Storm Center, are hitting Microsoft Windows users who have not yet applied the MS09-039 update.
Written by Ryan Naraine, Contributor

iewindowspatch.png
Just one week after Microsoft issued a fix for a worm hole in the Windows Internet Name Service (WINS), malicious hackers have started launching attacks against unpatched systems.

The attacks, first spotted by the SANS Internet Storm Center, are hitting Microsoft Windows users who have not yet applied the MS09-039 update.

[ SEE: Microsoft: Exploits likely for 'critical' Windows vulnerabilities ]

The MS09-039 update, released earlier this month on Patch Tuesday, is rated "critical" and Microsoft warned at the time that it expected to see dangerous exploit code within 30 days.

According to SANS ISC (see chart), there has been a sharp spike in Internet activity associated with TCP Port 42 in recent days.   The vulnerability in question allows remote code execution attacks via specially crafted WINS replication packet to an affected system running the WINS service.

sansport42.png

According to the IDG News Service, the attacks are originating from IP addresses in China.

Editorial standards
Show Comments

Related

Anker Solix X1

Not into the Tesla Powerwall? You can now buy the Anker Solix X1

windows-11-laptop

Microsoft is now showing ads in Windows 11's Start menu. Here's how to block them

Placeholder product image alt text

The best AI image generators to try right now